In an AWS VPC, if a private subnet's route table directs all internet-bound traffic (0.0.0.0/0) to a NAT Gateway, what is the expected behavior when an instance in this subnet initiates an outbound connection to the internet?
medium📝 service behavior Q4 of 15
AWS - VPC Fundamentals
In an AWS VPC, if a private subnet's route table directs all internet-bound traffic (0.0.0.0/0) to a NAT Gateway, what is the expected behavior when an instance in this subnet initiates an outbound connection to the internet?
AThe instance cannot access the internet because NAT Gateways only support inbound traffic.
BThe instance can both send and receive unsolicited inbound traffic from the internet directly.
CThe instance's traffic is routed through the NAT Gateway, allowing outbound internet access while blocking inbound unsolicited traffic.
DThe instance's traffic is dropped because private subnets cannot route to NAT Gateways.
Step-by-Step Solution
Solution:
Step 1: Understand NAT Gateway Functionality
A NAT Gateway enables instances in private subnets to initiate outbound internet connections while preventing unsolicited inbound connections.
Step 2: Analyze Route Table Entry
The route 0.0.0.0/0 -> NAT Gateway directs all internet-bound traffic from the private subnet to the NAT Gateway.
Final Answer:
The instance's traffic is routed through the NAT Gateway, allowing outbound internet access while blocking inbound unsolicited traffic. -> Option C
